Newest 'oauth-2.0' Questions

Q&A for professional and enthusiast programmers

How to make GET request to Yelp api using volley?

I am using Volley to make get request to Yelp Api and keep getting "BasicNetwork.performRequest: Unexpected response code 400 for https://api.yelp.com/v3/businesses/search" error. I made GET request ...

Using Jmeter 3.2 to test application secured by oAuth

As the oAuth plugin is deprecated for 3.2, how can oAuth be tested with Jmeter 3.2? I have looked at https://www.blazemeter.com/blog/how-run-performance-tests-oauth-secured-apps-jmeter

using oauth2 with mailkit

I am trying to use the below code with an oauth2 token to access a gmail account (with full access send/receive/mark etc). I wish to obtain the token programmatically? using (var client = new ...

Same callback URL for every Oauth app registration?

I want to register my app to multiple providers like LinkedIn, Facebook, Github ... and so on, I set my callback url to be a method triggered on my backend server like /authorizationCodeReceived which ...

wso2 Identity Server - SSO - application with specific rights

Currently I have two applications that handle each user and rights. I wanted to install and configure a WSO2 IS authentication server, and using SSO, for this two applications Can I use WSO2IS in ...

How to implement a client_credentials grant type in an angular http request?

I've created an OAUTH2 authorization server which uses client credentials for authentication and is responsible for the issuing of JWT tokens. When I place my request using postman I get the JWT ...

OAuth2 password grant and Basic Authentication

I developing a solution that has: an Authorization Server (AS), a Resource Server and two clients. The two clients are: a web app with Angular 2 and a mobile app with Angular 2 + Ionic 2. I have ...

Getting 400 response from the OAUth API through Jersey Java code But working fine (200) through REST Client

While working on a Micro-Service, I have to hit the REST OAuth api of the 3rd party. I am using the Spring Boot Application with Jersey library. Now the problem is that I am getting 400 response every-...

Need a guide to authorizing an Android app with the YouTube api

So I've been trying for almost two hours now to authenticate with YouTube from an Android app and it just isn't working. It seems like the preferred method keeps changing, and the parts that I can ...

How to get access to OAuth2 token for Yelp Fusion Api using C#

I am trying to get an access OAuth2 token for Yelp Fusion Api using C# as mentioned in the documentation: https://www.yelp.com/developers/documentation/v3/get_started However, I am getting the error ...

Python get email contacts [on hold]

I'm trying to write a program which reads the users email contacts and saves them into a .txt file. The problem I encounter is that i don't really find good tutorials or explanations for this kind of ...

Struts 2.0 does not support custom protocol [duplicate]

Struts 2.0 does not support custom (non-http) protocol for response.sendRedirect(). Is there a way that we can achieve this type of redirect from within Struts ? If I have a Servlet and I do, say, ...

How to get offline access in google api without prompting the user

I got basic profile info permission from a user through my google app. And now i newly added "access_type=offline" in the api call. It will prompt the user in consent screen like "Have offline access"....

Android Access Api with OAuth2 token

I built an Laravel Api with 0Auth2. The api works fine so far I tested it with Postman I put an url like: http://localhost/app/public/api/user And add my token as an Authentification and I get a ...

How do I use an id_token issued by Google as a JWT Bearer Grant

I want to use the id_token issued by Google OAuth2/OIDC provider as a JWT Bearer grant[1] at some other Identity Provider(say X) to obtain an access_token. Everything is fine except for 'aud' claim ...

Microsoft Graph API Authentication_MissingOrMalformed

I am using oauth2/token to authenticate my application and get the access_token. Bellow is the java code which is working fine. private String getToken() throws Exception { String ...

Spring Boot OAuth2 Authorization Server with 2 step login

I'm trying to set up a small micro-service style project using Spring Boot and OAuth2 with JWT. Here's the flow I would like: -> user clicks login and is taken to login page on Auth server -> ...

Oauth2 implementation with just a few service endpoints in c#

I am having a bugging question related to Oauth2 implementation in c#. I have read that we need IdentityServer or OAuth 2.0 Authorization Server using OWIN OAuth middleware. In our scenario we are ...

Oauth2 scope implementation

I am trying to implement Oauth2 server to secure my API. In my design, the system will have separated Authentication server and Resource server. The scenario is when Authentication server issues a ...

Trying to retrieve the User ID from discord using Discord OAuth2

I am using the plugin https://github.com/teamreflex/oauth2-discord and I'm able to connect successfully and retrieve the email and username of the connected user. I require the user id though, and ...

Revoking OAuth Access and Refresh Tokens

I want to properly implement a OAuth token revokation in my client. The specs for this (rfc7009) clearly say that an proper endpoint MUST allow revoking the refresh_token and SHOULD allow the same for ...

OAuth2: client_credentials to register user

A web service uses OAuth2. I need to create a user. As I understand registration process looks like: User fills a registration form, clicks "send" An app gets token via POST oauth2/token (with ...

Yahoo Mail be accessed by IMAP using OAuth or OAuth2 authentication

All existing solutions fails so need to know whats the status of the issue from Yahoo support team, already tried solutions here

Failed to launch browser with “https://accounts.google.com/o/oauth2/v2/auth”

I am uploading video from local to youtube. In local server it is working fine and authenticating window is getting opened . But while uploading video , this below code I am running and getting this ...

Angular2 front-end and Spring Security gateway : how to send back token to app?

I have an Angular 2 app that runs on another server than a Spring Boot based Gateway. All the Angular queries go through this gateway. I have set up the gateway as a Spring Security resource server, ...

Implement Oauth2.0 in iOS from zero?

I saw a lot of examples but: they all use a semi-ready and service-specific Oauth libraries. No one describes common principles which could be used for less popular services (in my particular case it ...

Get token from Oauth server with Xamarin Forms

I need to get token from own oauth server with xamarin.forms. I tried to use FubarCoder.RestSharp.Portable package like this : var client = new RestClient("https://myapi.com/auth/connect/token"); ...

Kong oauth2 plugin

I used Kong oauth2 plugin for an api I had made and then tried to access the api using this node.js client. However,at the /oauth2/authorize endpoint I get the error Cannot GET /undefined. Following ...

Spring OAUTH2 server gives a error back saying “Full authentication is required to access this resourc” with 401

My curl command is working fine but only problem with post man 'POST METHOD' request curl: curl act_client@localhost:8089/oauth/token -d grant_type=password -d username=jack -d password=act123 ...

OAuth.io with Angular 4 and nodejs

I am writing my first OAuth.io authentication-based application but am struggling to understand how to get started. I have read a lot of the documentation on the OAuth.io site but it is still not ...

How to save oauth acesstoken

i'm developing an android oauth login system.So i had generate acess_token ,expire_in and refresh token properly.I also develop a web service to store client id and client secret.and these web app ...

Web Browser Redirect won't open activity, despite intent-filter in manifest

I have following code in manifest : <intent-filter> <action android:name="android.intent.action.VIEW"/> <category android:name="android.intent.category.DEFAULT"/&...

Secure API with OpenID Connect - RP trust of OP

Getting to grips with OpenID Connect with a third party IdP ( OP ) and securing APIs. I'm comfortable with the client and user agent component and the OAuth2.0 flows and scopes to get an access token ...

cors blocks response on my domain but not on yelp.com

While making the below request using XMLHttpRequest cors blocks the javascript form reading response xhttp.open("GET", "https://www.facebook.com/connect/ping?client_id=97534753161&domain=www.yelp....

Sign up with Facebook and create Auth0 account

Is it possible to create a user on auth0 using a 'sign up with Facebook' button, i.e so they don't have to enter their email, password etc to sign up or login? I can't seem to find the appropriate API ...

How to properly implement JWT using client_id and client_secret to authenticate?

I am working on establishing an API that will be accessed by several third parties. The third parties already have accounts in my system. I've created a method for them to login to my site where ...

Test a Controller decorated with [Authorize] attribute via TestServer

My application is an ASP.NET Core 1.0 Web API. I would like to test my controllers with the TestServer object. I have a controller class decorated with the Authorize attribute. How i get my ...

Programming Flow with Signin with google

I am trying to write a web app which uses sign in with google. I am a bit confused about the sequence of steps which should be followed. According to google docs , the normal flow for signing in a ...

Oauth2 HTTP client Core

I am trying to get a httpclient to work with oauth2 token. I have a Dot Net Core MVC site working with oauth2 against ADFS 3.0 endpoint directly. With cookie authentication also. app....

Delete Google Cloud Project

I shutdown my google project as I want to use package name of android app for authentication in another google cloud project. But after 20 days also project is not deleted. I don't want to change my ...

GoogleOAuth2AuthenticationProvider.OnAuthenticated alternative in ASP.NET Core MVC

I used to have the code like this in ASP.NET MVC app (as part of OAuth 2.0 authentication with Google): GoogleOAuth2AuthenticationOptions googleOptions = new GoogleOAuth2AuthenticationOptions() { ...

How can I assign two call back paths to an OWIN middleware

I have developed an OWIN middleware to enable user authentication with an external authentication provider, which in this case is ADFS 3.0 (using OAuth 2.0). The call back path for this middleware is ...

Making a php OAuth request to Discord

Been struggling for a while. Trying to get my token from discord. Please let me know where I am going wrong. <?php ini_set('display_errors',1); $code = ''; $code = $_GET['code']; if(isset($code)...

IdentityServer4: How to include email in access_token without the client explicitly requesting it?

when the user logs in on the IdentityServer4 via Google, I'd like to access the email (and maybe their google-id) but without having the client request it. So it should be accessible every time, so I ...

Google Oauth removing scopes from access

Lets say I have an application and my application has been running for years requesting access of users. The application in question was requesting way more access then was needed or the application ...

Creating user without password with doorkeeper oauth2 provider throught provider like Google, Github, etc

I created api app, which is oauth2 provider, with ruby on rails and doorkeeper. The goal is to create user without password, just with using some oauth2 provider (Google, GitHub, LinkedIn, ...). But ...

Google home account linking failed

I am trying to providing account linking to google home user. User will get redirect to login page and user is verified.I am using implicit method to redirect token but i am getting error like this : ...

OAuth2 (Code Grant) access_token Meaning

Our team is starting to build out a SMART on FHIR (SoF) application. SoF uses OAuth2 access_tokens to represent authorizations. Our app is using the code grant to get a token (https://oauth2....

AAD application permissions to enable creating other AAD application

What OAuth API and permissions are required by an AAD application so that I can use it to authorize creating new AAD application as described in this example

OAuth2 curl reqeust returns 'The client credentials are invalid' for “grant_type = 'password'”

I am trying to get access token for user with credentials , that is registered in DB, with OAuth2. In my oauth_clients I have a valid client with 'client_id=myclientid', 'client_secret=myclientsecret',...
Translating... 0%